hmcnasty
asked on
Reconfigure Microsoft Exchange Server to Use a Fully Qualified Domain Name
Hi.
I have 2 clients running exchange server 2010.
I needed to upgrade their exchange ssl certificates. I was told when I was renewing them that certs can no longer contain the local name of the exchange server.
So I renewed the certificates with only the outside domain name mail.yourcompany.com
I ran these commands in the exchange shell:
To change the Autodiscover URL, type the following command, and then press Enter:
Set-ClientAccessServer -Identity main-fs -AutodiscoverServiceIntern
To change the InternalUrl attribute of the EWS, type the following command, and then press Enter:
Set-WebServicesVirtualDire
To change the InternalUrl attribute for Web-based Offline Address Book distribution, type the following command, and then press Enter:
Set-OABVirtualDirectory -Identity "main-fs\oab (Default Web Site)" -InternalUrl https://mail.mycompany.com/oab
To recycle the application pools, open IIS Manager.
Expand the local computer, and then expand Application Pools.
Right-click MSExchangeAutodiscoverAppP
Today the users are complaining about a cert popup in their local outlook clients.
What do I need to do to fix this?
Wes
I have 2 clients running exchange server 2010.
I needed to upgrade their exchange ssl certificates. I was told when I was renewing them that certs can no longer contain the local name of the exchange server.
So I renewed the certificates with only the outside domain name mail.yourcompany.com
I ran these commands in the exchange shell:
To change the Autodiscover URL, type the following command, and then press Enter:
Set-ClientAccessServer -Identity main-fs -AutodiscoverServiceIntern
To change the InternalUrl attribute of the EWS, type the following command, and then press Enter:
Set-WebServicesVirtualDire
To change the InternalUrl attribute for Web-based Offline Address Book distribution, type the following command, and then press Enter:
Set-OABVirtualDirectory -Identity "main-fs\oab (Default Web Site)" -InternalUrl https://mail.mycompany.com/oab
To recycle the application pools, open IIS Manager.
Expand the local computer, and then expand Application Pools.
Right-click MSExchangeAutodiscoverAppP
Today the users are complaining about a cert popup in their local outlook clients.
What do I need to do to fix this?
Wes
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You would create a new zone on your interal DNS for mycompany.com. Then you would create a Host (A) record for mail.mycompany.com and a cname for autodiscover.domain.com.
Will.
Will.
ASKER
never mind on that last question. I'll keep you posted
ASKER
Ok done. Do I need to adjust the clients at all?
ASKER
Thanks Will. This seems to work when I recreate the profiles manually using mail.mycompany.com However on the current clients the es reads exchangeserver.local
on client that are not working have you tried to run Test Email Auto Config to see if you are getting the correct URL's from Autodiscover?
This should not be required to re-create all of the profiles.
Will.
This should not be required to re-create all of the profiles.
Will.
ASKER
i think its ok now. I created a new user in ad and a new mailbox ran outlook and it set it up with no issues. I think what gets me is if I go into the account properties i see the local name of the exchange server instead of mail.mydomain.com under the server name.
Does that matter?
Does that matter?
ASKER
of course i'm speaking about internal users
ASKER
it is using autodiscover through the test email auto config
ASKER
Hi Will. It seems that some folks are still getting the cert error, however I created a new account and i don't get it.
The test email auto config shows the correct OWA link
The only thing that still shows the local server name in under protocol: Exchange PC
The test email auto config shows the correct OWA link
The only thing that still shows the local server name in under protocol: Exchange PC
If you reload the profile for the users that are having this issue does it work for them?
Something seems to be cached on the machine.
Will.
Something seems to be cached on the machine.
Will.
ASKER
I'm gonna try that next. That has to be it. Everything seems to be in place.
Wes
Wes
ASKER
Thanks Will. This works great.
Wes
Wes
ASKER
When I put in the new zone name is it mail.mycompany.com or just mycompany.com?
Odd that godadddy did say I needed to do any of this for it to work. Although not surprising I guess